2 * Copyright (C) 2004, 2005, 2007, 2009, 2011, 2012, 2014, 2015 Internet Systems Consortium, Inc. ("ISC")
3 * Copyright (C) 2003 Internet Software Consortium.
5 * Permission to use, copy, modify, and/or distribute this software for any
6 * purpose with or without fee is hereby granted, provided that the above
7 * copyright notice and this permission notice appear in all copies.
9 * THE SOFTWARE IS PROVIDED "AS IS" AND ISC DISCLAIMS ALL WARRANTIES WITH
10 * REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY
11 * AND FITNESS. IN NO EVENT SHALL ISC BE LIABLE FOR ANY SPECIAL, DIRECT,
12 * INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM
13 * LOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE
14 * OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR
15 * PERFORMANCE OF THIS SOFTWARE.
20 /* Reviewed: Fri Mar 17 09:05:02 PST 2000 by gson */
24 #ifndef RDATA_GENERIC_RRSIG_46_C
25 #define RDATA_GENERIC_RRSIG_46_C
27 #define RRTYPE_RRSIG_ATTRIBUTES (DNS_RDATATYPEATTR_DNSSEC)
29 static inline isc_result_t
30 fromtext_rrsig(ARGS_FROMTEXT) {
34 dns_rdatatype_t covered;
39 isc_uint32_t time_signed, time_expire;
50 RETERR(isc_lex_getmastertoken(lexer, &token, isc_tokentype_string,
52 result = dns_rdatatype_fromtext(&covered, &token.value.as_textregion);
53 if (result != ISC_R_SUCCESS && result != ISC_R_NOTIMPLEMENTED) {
54 i = strtol(DNS_AS_STR(token), &e, 10);
55 if (i < 0 || i > 65535)
59 covered = (dns_rdatatype_t)i;
61 RETERR(uint16_tobuffer(covered, target));
66 RETERR(isc_lex_getmastertoken(lexer, &token, isc_tokentype_string,
68 RETTOK(dns_secalg_fromtext(&c, &token.value.as_textregion));
69 RETERR(mem_tobuffer(target, &c, 1));
74 RETERR(isc_lex_getmastertoken(lexer, &token, isc_tokentype_number,
76 if (token.value.as_ulong > 0xffU)
78 c = (unsigned char)token.value.as_ulong;
79 RETERR(mem_tobuffer(target, &c, 1));
84 RETERR(isc_lex_getmastertoken(lexer, &token, isc_tokentype_number,
86 RETERR(uint32_tobuffer(token.value.as_ulong, target));
89 * Signature expiration.
91 RETERR(isc_lex_getmastertoken(lexer, &token, isc_tokentype_string,
93 if (strlen(DNS_AS_STR(token)) <= 10U &&
94 *DNS_AS_STR(token) != '-' && *DNS_AS_STR(token) != '+') {
99 u64 = u = strtoul(DNS_AS_STR(token), &end, 10);
100 if (u == ULONG_MAX || *end != 0)
101 RETTOK(DNS_R_SYNTAX);
102 if (u64 > 0xffffffffUL)
106 RETTOK(dns_time32_fromtext(DNS_AS_STR(token), &time_expire));
107 RETERR(uint32_tobuffer(time_expire, target));
112 RETERR(isc_lex_getmastertoken(lexer, &token, isc_tokentype_string,
114 if (strlen(DNS_AS_STR(token)) <= 10U &&
115 *DNS_AS_STR(token) != '-' && *DNS_AS_STR(token) != '+') {
120 u64 = u = strtoul(DNS_AS_STR(token), &end, 10);
121 if (u == ULONG_MAX || *end != 0)
122 RETTOK(DNS_R_SYNTAX);
123 if (u64 > 0xffffffffUL)
127 RETTOK(dns_time32_fromtext(DNS_AS_STR(token), &time_signed));
128 RETERR(uint32_tobuffer(time_signed, target));
133 RETERR(isc_lex_getmastertoken(lexer, &token, isc_tokentype_number,
135 RETERR(uint16_tobuffer(token.value.as_ulong, target));
140 RETERR(isc_lex_getmastertoken(lexer, &token, isc_tokentype_string,
142 dns_name_init(&name, NULL);
143 buffer_fromregion(&buffer, &token.value.as_region);
144 origin = (origin != NULL) ? origin : dns_rootname;
145 RETTOK(dns_name_fromtext(&name, &buffer, origin, options, target));
150 return (isc_base64_tobuffer(lexer, target, -1));
153 static inline isc_result_t
154 totext_rrsig(ARGS_TOTEXT) {
156 char buf[sizeof("4294967295")];
157 dns_rdatatype_t covered;
164 REQUIRE(rdata->type == 46);
165 REQUIRE(rdata->length != 0);
167 dns_rdata_toregion(rdata, &sr);
172 covered = uint16_fromregion(&sr);
173 isc_region_consume(&sr, 2);
175 * XXXAG We should have something like dns_rdatatype_isknown()
176 * that does the right thing with type 0.
178 if (dns_rdatatype_isknown(covered) && covered != 0) {
179 RETERR(dns_rdatatype_totext(covered, target));
181 sprintf(buf, "TYPE%u", covered);
182 RETERR(str_totext(buf, target));
184 RETERR(str_totext(" ", target));
189 sprintf(buf, "%u", sr.base[0]);
190 isc_region_consume(&sr, 1);
191 RETERR(str_totext(buf, target));
192 RETERR(str_totext(" ", target));
197 sprintf(buf, "%u", sr.base[0]);
198 isc_region_consume(&sr, 1);
199 RETERR(str_totext(buf, target));
200 RETERR(str_totext(" ", target));
205 ttl = uint32_fromregion(&sr);
206 isc_region_consume(&sr, 4);
207 sprintf(buf, "%lu", ttl);
208 RETERR(str_totext(buf, target));
210 if ((tctx->flags & DNS_STYLEFLAG_MULTILINE) != 0)
211 RETERR(str_totext(" (", target));
212 RETERR(str_totext(tctx->linebreak, target));
217 exp = uint32_fromregion(&sr);
218 isc_region_consume(&sr, 4);
219 RETERR(dns_time32_totext(exp, target));
220 RETERR(str_totext(" ", target));
225 when = uint32_fromregion(&sr);
226 isc_region_consume(&sr, 4);
227 RETERR(dns_time32_totext(when, target));
228 RETERR(str_totext(" ", target));
233 foot = uint16_fromregion(&sr);
234 isc_region_consume(&sr, 2);
235 sprintf(buf, "%lu", foot);
236 RETERR(str_totext(buf, target));
237 RETERR(str_totext(" ", target));
242 dns_name_init(&name, NULL);
243 dns_name_fromregion(&name, &sr);
244 isc_region_consume(&sr, name_length(&name));
245 RETERR(dns_name_totext(&name, ISC_FALSE, target));
250 RETERR(str_totext(tctx->linebreak, target));
251 if (tctx->width == 0) /* No splitting */
252 RETERR(isc_base64_totext(&sr, 60, "", target));
254 RETERR(isc_base64_totext(&sr, tctx->width - 2,
255 tctx->linebreak, target));
256 if ((tctx->flags & DNS_STYLEFLAG_MULTILINE) != 0)
257 RETERR(str_totext(" )", target));
259 return (ISC_R_SUCCESS);
262 static inline isc_result_t
263 fromwire_rrsig(ARGS_FROMWIRE) {
272 dns_decompress_setmethods(dctx, DNS_COMPRESS_NONE);
274 isc_buffer_activeregion(source, &sr);
280 * signature expiration: 4
285 return (ISC_R_UNEXPECTEDEND);
287 isc_buffer_forward(source, 18);
288 RETERR(mem_tobuffer(target, sr.base, 18));
293 dns_name_init(&name, NULL);
294 RETERR(dns_name_fromwire(&name, source, dctx, options, target));
299 isc_buffer_activeregion(source, &sr);
300 isc_buffer_forward(source, sr.length);
301 return (mem_tobuffer(target, sr.base, sr.length));
304 static inline isc_result_t
305 towire_rrsig(ARGS_TOWIRE) {
308 dns_offsets_t offsets;
310 REQUIRE(rdata->type == 46);
311 REQUIRE(rdata->length != 0);
313 dns_compress_setmethods(cctx, DNS_COMPRESS_NONE);
314 dns_rdata_toregion(rdata, &sr);
320 * signature expiration: 4
324 RETERR(mem_tobuffer(target, sr.base, 18));
325 isc_region_consume(&sr, 18);
330 dns_name_init(&name, offsets);
331 dns_name_fromregion(&name, &sr);
332 isc_region_consume(&sr, name_length(&name));
333 RETERR(dns_name_towire(&name, cctx, target));
338 return (mem_tobuffer(target, sr.base, sr.length));
342 compare_rrsig(ARGS_COMPARE) {
346 REQUIRE(rdata1->type == rdata2->type);
347 REQUIRE(rdata1->rdclass == rdata2->rdclass);
348 REQUIRE(rdata1->type == 46);
349 REQUIRE(rdata1->length != 0);
350 REQUIRE(rdata2->length != 0);
352 dns_rdata_toregion(rdata1, &r1);
353 dns_rdata_toregion(rdata2, &r2);
354 return (isc_region_compare(&r1, &r2));
357 static inline isc_result_t
358 fromstruct_rrsig(ARGS_FROMSTRUCT) {
359 dns_rdata_rrsig_t *sig = source;
362 REQUIRE(source != NULL);
363 REQUIRE(sig->common.rdtype == type);
364 REQUIRE(sig->common.rdclass == rdclass);
365 REQUIRE(sig->signature != NULL || sig->siglen == 0);
373 RETERR(uint16_tobuffer(sig->covered, target));
378 RETERR(uint8_tobuffer(sig->algorithm, target));
383 RETERR(uint8_tobuffer(sig->labels, target));
388 RETERR(uint32_tobuffer(sig->originalttl, target));
393 RETERR(uint32_tobuffer(sig->timeexpire, target));
398 RETERR(uint32_tobuffer(sig->timesigned, target));
403 RETERR(uint16_tobuffer(sig->keyid, target));
408 RETERR(name_tobuffer(&sig->signer, target));
413 return (mem_tobuffer(target, sig->signature, sig->siglen));
416 static inline isc_result_t
417 tostruct_rrsig(ARGS_TOSTRUCT) {
419 dns_rdata_rrsig_t *sig = target;
422 REQUIRE(rdata->type == 46);
423 REQUIRE(target != NULL);
424 REQUIRE(rdata->length != 0);
426 sig->common.rdclass = rdata->rdclass;
427 sig->common.rdtype = rdata->type;
428 ISC_LINK_INIT(&sig->common, link);
430 dns_rdata_toregion(rdata, &sr);
435 sig->covered = uint16_fromregion(&sr);
436 isc_region_consume(&sr, 2);
441 sig->algorithm = uint8_fromregion(&sr);
442 isc_region_consume(&sr, 1);
447 sig->labels = uint8_fromregion(&sr);
448 isc_region_consume(&sr, 1);
453 sig->originalttl = uint32_fromregion(&sr);
454 isc_region_consume(&sr, 4);
459 sig->timeexpire = uint32_fromregion(&sr);
460 isc_region_consume(&sr, 4);
465 sig->timesigned = uint32_fromregion(&sr);
466 isc_region_consume(&sr, 4);
471 sig->keyid = uint16_fromregion(&sr);
472 isc_region_consume(&sr, 2);
474 dns_name_init(&signer, NULL);
475 dns_name_fromregion(&signer, &sr);
476 dns_name_init(&sig->signer, NULL);
477 RETERR(name_duporclone(&signer, mctx, &sig->signer));
478 isc_region_consume(&sr, name_length(&sig->signer));
483 sig->siglen = sr.length;
484 sig->signature = mem_maybedup(mctx, sr.base, sig->siglen);
485 if (sig->signature == NULL)
490 return (ISC_R_SUCCESS);
494 dns_name_free(&sig->signer, mctx);
495 return (ISC_R_NOMEMORY);
499 freestruct_rrsig(ARGS_FREESTRUCT) {
500 dns_rdata_rrsig_t *sig = (dns_rdata_rrsig_t *) source;
502 REQUIRE(source != NULL);
503 REQUIRE(sig->common.rdtype == 46);
505 if (sig->mctx == NULL)
508 dns_name_free(&sig->signer, sig->mctx);
509 if (sig->signature != NULL)
510 isc_mem_free(sig->mctx, sig->signature);
514 static inline isc_result_t
515 additionaldata_rrsig(ARGS_ADDLDATA) {
516 REQUIRE(rdata->type == 46);
522 return (ISC_R_SUCCESS);
525 static inline isc_result_t
526 digest_rrsig(ARGS_DIGEST) {
528 REQUIRE(rdata->type == 46);
534 return (ISC_R_NOTIMPLEMENTED);
537 static inline dns_rdatatype_t
538 covers_rrsig(dns_rdata_t *rdata) {
539 dns_rdatatype_t type;
542 REQUIRE(rdata->type == 46);
544 dns_rdata_toregion(rdata, &r);
545 type = uint16_fromregion(&r);
550 static inline isc_boolean_t
551 checkowner_rrsig(ARGS_CHECKOWNER) {
563 static inline isc_boolean_t
564 checknames_rrsig(ARGS_CHECKNAMES) {
566 REQUIRE(rdata->type == 46);
576 casecompare_rrsig(ARGS_COMPARE) {
583 REQUIRE(rdata1->type == rdata2->type);
584 REQUIRE(rdata1->rdclass == rdata2->rdclass);
585 REQUIRE(rdata1->type == 46);
586 REQUIRE(rdata1->length != 0);
587 REQUIRE(rdata2->length != 0);
589 dns_rdata_toregion(rdata1, &r1);
590 dns_rdata_toregion(rdata2, &r2);
592 INSIST(r1.length > 18);
593 INSIST(r2.length > 18);
596 order = isc_region_compare(&r1, &r2);
600 dns_name_init(&name1, NULL);
601 dns_name_init(&name2, NULL);
602 dns_rdata_toregion(rdata1, &r1);
603 dns_rdata_toregion(rdata2, &r2);
604 isc_region_consume(&r1, 18);
605 isc_region_consume(&r2, 18);
606 dns_name_fromregion(&name1, &r1);
607 dns_name_fromregion(&name2, &r2);
608 order = dns_name_rdatacompare(&name1, &name2);
612 isc_region_consume(&r1, name_length(&name1));
613 isc_region_consume(&r2, name_length(&name2));
615 return (isc_region_compare(&r1, &r2));
618 #endif /* RDATA_GENERIC_RRSIG_46_C */
projects / FreeBSD / stable / 9.git / blob